End Point Security

Endpoint Security is the sum total of the measures taken to implement security concerning endpoints. These measures include assessing risk to protect endpoints, such as with client antivirus and personal firewall, and protecting the network from the endpoints themselves, such as with quarantine and access control. Also, Endpoint Security logically extends to the management and administration of these security measures, as well as to the risk, reporting, and knowledge management of the state and results of these measures.

The Ever-Growing Threat

The growing number and variety of threats to endpoints, as well as threats that use endpoints as a vector, has made endpoint security a “hot topic.” Current threats include viruses, Trojans, worms, the use of endpoints as DDoS zombie hosts, and spyware. New threats emerge on a regular basis. These threats take advantage of a growing number and variety of endpoint vulnerabilities. These vulnerabilities include the familiar, such as buffer overruns; the more insidious, such as keystroke-loggers and instant-messaging worms; and the most recent, such as vulnerabilities in the security software itself.

Enterprises end up with extreme vulnerability to a bewildering array of threats that increase each day. Endpoints are where the typical enterprise conducts most of its business, and disruption to endpoints is a huge impact to enterprises in terms of cost and lost productivity. Since endpoints are now a primary target of these threats, enterprises are forced by necessity to confront Endpoint security as a core business issue.

In reality, endpoint security is both an enterprise goal and an enterprise practice. To achieve the goal, each enterprise has to determine its own best practices to meet business goals and regulatory requirements. By taking this approach and considering all options, the enterprise is able to define its own requirements, tools, and practices for endpoint security and achieve its own goals to secure the extended network.

Articles

Kaspersky® EndPoint Security Solutions

Published on January 19, 2011

Kaspersky® Anti-Virus for File ServerKaspersky® Anti-Virus for File Server reliably protects servers running under Microsoft Windows, Novell NetWare, Linux and Samba from malicious programs including viruses, Trojans, spyware and more.Antivirus protection for shared file storage areas is essential, since a single infected file on the server may infect the workstations of all users of the resource. Proper protection of the file server not only ensures that users and their important information are protected, but also eliminates the danger of viruses making their way into backup copies of files, which may cause repeated virus outbreaks and other incidents.

Kaspersky Anti-Virus for Windows ServersKaspersky Anti-Virus 6.0 for Windows Servers Enterprise Edition protects data on servers running under the Microsoft Windows family of operating systems (including x64 versions) from all types of malicious programs. The product was designed specifically for high-performance corporate servers that experience heavy loads.

AdvantagesReliability and effectiveness. The iChecker and iSwift technologies, combined with the exclusion of trusted processes from scanning, increase performance and lower the amount of required computing resources to carry out antivirus scans. When the application is used on multiprocessor servers, the system administrator can specify the number of application processes that can run simultaneously in order to accelerate tasks running in parallel and minimize the effect on users’ work. Should the application malfunction or be forced to close, the automatic restart helps ensure stable protection. Our product features a well-developed diagnostics system.

Flexible administration options. Using the Kaspersky Administration Kit or the Microsoft Management Console, the system administrator can install and change the application settings remotely on several servers simultaneously.

Customization of administrator rights. The application makes it possible to issue different rights to individual system administrators. For example, some administrators can be assigned the right to review application reports, others can be granted the right to launch existing tasks, while still others can be authorized with full administrative rights. The rights system is based on standard mechanisms existing within the Microsoft Windows operating system.

Protection of terminal servers and cluster support. The application can work with Microsoft Terminal and Citrix terminal servers and provides full notification to users whenever infected content is detected. Kaspersky Anti-Virus for Windows Servers Enterprise Edition can also be used to protect server clusters.

Optimization for Intel Xeon™ (Only available with Windows Server Enterprise Edition). Kaspersky Anti-Virus for Windows Server Enterprise Edition is optimized for multi-processor servers based on the Intel Xeon technology. The application’s scalability and high performance make it an optimal choice in high load environments.

Kaspersky Anti-Virus 6.0 S.O.SKaspersky Anti-Virus 6.0 Second Opinion Solution provides centralized antivirus scanning of workstations on a corporate network without causing conflicts with antivirus software from other vendors installed on the network.This new product from Kaspersky Lab will enable you to achieve several objectives at once: first, to increase the level of your network's antivirus protection; second, to test the effectiveness of your existing antivirus solution; and third, to decide whether you should change your antivirus solution.

Kaspersky Anti-Virus S.O.S. is different from traditional antivirus solutions in that it does not include a real-time (on-access) protection module; thus, it does not cause system conflicts with other antivirus software already installed. Furthermore, Kaspersky Anti-Virus S.O.S. is centrally installed and managed. Since there is no need to uninstall your existing antivirus product in order to use Kaspersky Anti-Virus S.O.S., you will be able to evaluate the effectiveness of your current protection and decide whether you should migrate to an alternative.

In addition, using Kaspersky Anti-Virus S.O.S. to perform regular additional on-demand scans of the workstations will enhance the antivirus protection of the corporate network.

AdvantagesOne more layer of antivirus protection. Using Kaspersky Anti-Virus S.O.S. to perform regular additional on-demand scans of the workstations will help you to maintain a high level of protection from malicious programs on your network.

Can be used in parallel with other antivirus software. Kaspersky Anti-Virus S.O.S. is different from traditional antivirus solutions in that it does not include a real-time (on-access) protection module; thus, it will not cause system conflicts with other antivirus software already installed on your network.

Risk-free evaluation of an alternative solution. Installation of Kaspersky Anti-Virus S.O.S. does not require uninstalling any existing antivirus products. You can then compare your current antivirus protection and a new solution and decide whether replacing your antivirus protection is necessary.

Easy migration to a different antivirus solution. Since Kaspersky Administration Kit provides all of the necessary tools to do so, migrating to a fully functional solution (e.g., Kaspersky Work Space Security) will take little time and will not interfere with users' work.